Description

The repldisc command enables the discovery of a replication
topology. Topology discovery starts with one server and constructs a graph
of all known servers (using the RUVs and Replication Agreements). repldisc then prints an adjacency matrix describing the topology.

Options

The following options are supported:

-a

Specifies that only the arcs between pairs of connected hosts
are printed. For more information, see EXAMPLES.

Note –

If the total line length of the output exceeds 80 characters,
symbolic host names are used, accompanied by a legend. Otherwise, full host
names are printed. Using the -a option ensures that symbolic
host names are not used.

-b

The suffix (replica root) that has been specified for replication.
If -b is not specified, the delay for all suffixes is printed.

-D

Distinguished name with which to bind to the server. This
parameter is optional if the server is configured to support anonymous access.
If a DN is specified in the HostSpec option, this
overrides the -D option.

-j

If specifying the default password at the command-line poses
a security risk, the password can be stored in a file. The -j option
specifies this file.

-n

Specifies that repldisc should not run
in interactive mode. Running in interactive mode allows you to re-enter the
bindDN, password, host and port, if a bind error occurs.

-p

The TCP port used by the instance. The default port is 389.
If a port is specified in the HostSpec, this overrides
the -p option.

-t

Prints the mode of transport (SSL or CLEAR).

-T

Specifies the number of seconds after which repldisc times
out if the server connection goes down.

-w

Password associated with the distinguished name specified
by the -D option. If a password is specified in the HostSpec, this overrides the -w option.

HostSpec

Host specification, which takes the form [binddn:[password]@] host[:port]. The following is an example:

cn=admin,cn=Administrators,cn=config:mypword@myserver:1389

If you are using SSL, use -S in the server specification.
In this case, HostSpec specifies the certificate name
and key password, rather than the bindDN and password.

SSL OPTIONS

You can use the following options to specify that repldisc uses
LDAPS when communicating with Directory Server. You can also use these
options if you want to use certificate-based authentication. These options
are valid only when LDAPS has been turned on and configured.

-e

Default SSL port, 636.

-J

This option has the same function as the -j option,
for the key password.

-K

Specifies the name of the certificate key used for certificate-based
client authentication. For example, -KServer-Key.

-N

Specifies the certificate name to use for certificate-based
client authentication. For example, - NServer-Cert.
If this option is specified, the -W option is required.

-P

Specifies the location of the certificate database.

-W

Specifies the password for the certificate database identified
by the -P option. For example, -Wserverpassword.

Attributes

See Also

insync(1), entrycmp(1)

Notes

The node on which you are running the entrycmp, insync, and repldisc tools must be able to reach
all the specified hosts. If these hosts are unavailable, you will encounter
difficulties using these tools. Ensure that all servers are up and running
before using these tools.

When you identify hosts, you must use either symbolic names or IP addresses
for all hosts. The replication monitoring commands do not address resolution
between symbolic names and IP addresses. Using a combination of symbolic names
and IP addresses can cause problems. Moreover, on multi-homed hosts, referring
to the same Directory Server instance using different names may cause unexpected
results.

When SSL is enabled, the directory server on which you are running the
tools must have a copy of all the certificates used by the other servers in
the topology.

repldisc takes the host specification from the replication
agreement, unless otherwise specified at the command line.

The replication monitoring tools rely on access to cn=config to
obtain the replication status. This should be taken into account, particularly
when replication is configured over SSL.